Vulnerabilities
Stay ahead of the curve with our comprehensive coverage of WordPress plugin and theme vulnerabilities. Don’t let outdated software put your website at risk.
WordPress Soisy Pagamento Rateale Plugin Broken Access Control Vulnerability
A Broken Access Control vulnerability has been discovered in the WordPress Soisy Pagamento Rateale Plugin. This vulnerability could allow an unprivileged user
SQL Injection vulnerability in WordPress ChatBot Plugin
A critical SQL Injection vulnerability has been identified in the WordPress AI ChatBot plugin. This vulnerability could allow a malicious actor to
Arbitrary File Deletion vulnerability in WordPress ChatBot Plugin
A critical Arbitrary File Deletion vulnerability has been identified in the WordPress AI ChatBot plugin. This vulnerability could allow a malicious actor
SQL Injection vulnerability in WordPress iPanorama 360 WordPress Virtual Tour Builder Plugin
A critical SQL Injection vulnerability has been identified in the WordPress iPanorama 360 WordPress Virtual Tour Builder Plugin. This vulnerability could allow
Directory Traversal vulnerability in WordPress ChatBot Plugin
A Directory Traversal vulnerability has been identified in the WordPress AI ChatBot plugin. This vulnerability could allow a malicious actor to see
Local File Inclusion (LFI) vulnerability in WordPress Ultimate Addons for WPBakery Page Builder Plugin
A Local File Inclusion (LFI) vulnerability has been identified in the WordPress Ultimate Addons for WPBakery Page Builder Plugin. This vulnerability could
Cross-Site Scripting (XSS) vulnerability in WordPress Motors – Car Dealer & Classified Ads Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress Motors – Car Dealer & Classified Ads Plugin. This vulnerability could
Cross-Site Request Forgery (CSRF) vulnerability in WordPress Webpushr Plugin
A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the WordPress Webpushr Plugin. This vulnerability could allow a malicious actor to
Cross-Site Scripting (XSS) vulnerability in WordPress Grid Plus Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress Grid Plus Plugin. This vulnerability could allow a malicious actor to
Broken Access Control vulnerability in WordPress BetterLinks Plugin
A Broken Access Control vulnerability has been identified in the WordPress BetterLinks Plugin. This vulnerability could allow an unprivileged user to execute
SQL Injection vulnerability in WordPress History Log by click5 Plugin
A SQL Injection vulnerability has been identified in the WordPress History Log by click5 Plugin. This vulnerability could allow a malicious actor
Cross-Site Scripting (XSS) vulnerability in WordPress MpOperationLogs Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress MpOperationLogs Plugin. This vulnerability could allow a malicious actor to inject
WordPress Booking Calendar Plugin Cross-Site Scripting (XSS) Vulnerability
A Cross-Site Scripting (XSS) vulnerability has been discovered in the WordPress Booking Calendar plugin. This vulnerability could allow a malicious actor to
Cross-Site Scripting (XSS) vulnerability in WordPress Shared Files Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress Shared Files plugin. This vulnerability could allow a malicious actor to
WordPress WP Matterport Shortcode Plugin Cross-Site Scripting (XSS) Vulnerability
A Cross-Site Scripting (XSS) vulnerability has been discovered in the WordPress WP Matterport Shortcode plugin. This vulnerability could allow a malicious actor